4,取得ROOT权限
重启后你可以用之前创建的用户名登录,因为本手册中每步我们都必须用root权限,我们可以使用sudo前置每个命令,或者现在就变成root:
sudo su
(你也以启动root登录)
sudo passwd root
给定root密码,但这不是推荐做法原因可以看这里: Ubuntuforums.org/showthread.php?t=765414
5,安装SSH Server (可选)
如果你在系统安装里没有安装,你现在可以:
aptitude install ssh openssh-server
现在你可以用SSH客户端比如PUTTY从你的工作站上继续安装进程
6,安装 vim-nox(可选)
我将使用vi作为编辑器,DEBIAN和UBUNTU上默认的vi有些古怪的行为,所以我安装vim-nox
aptitude install vim-nox
(你不一定要做这一步,如果你有另一个文本编辑器,比如joe或者nano)
7,设置网络
因为Ubuntu安装器已经通过DHCP服务器设置了网络,所以你必须改变它,因为一个服务器应该有一个静态的网络设置。编辑 /etc/network/interfaces 然后把它设置成你需要的地址(本例中我将使用192.168.0.100作为IP地址)
vi /etc/network/interfaces
# This file describes the network interfaces available on your system # The loopback network interface # The primary network interface
# and how to activate them. For more information, see interfaces(5).
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet static
address 192.168.0.100
netmask 255.255.255.0
network 192.168.0.0
broadcast 192.168.0.255
gateway 192.168.0.1
然后重启你的网络服务
/etc/init.d/networking restart
然后编辑你的/etc/hosts.使它看起来像这样:
vi /etc/hosts
127.0.0.1 localhost.localdomain localhost # The following lines are desirable for IPv6 capable hosts
192.168.0.100 server1.example.com server1
::1 localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts
现在运行
echo server1.example.com > /etc/hostname
/etc/init.d/hostname.sh start
然后运行
hostname
hostname -f
现在两个都应该显示server1.example.com
8,编辑/etc/apt/source.list 然后更新你的linux安装
编辑/etc/apt/source.list,注释掉安装CD这行,确保universe和mulitverse库已启用,看起来应该是这样
vi /etc/apt/source.list
# #deb cdrom:[Ubuntu-Server 9.04 _Jaunty Jackalope_ - Release amd64 (20090421.1)]/ jaunty main restricted deb jaunty main restricted ## Major bug fix updates produced after the final release of the ## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu ## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu ## Uncomment the following two lines to add software from the 'backports' ## Uncomment the following two lines to add software from Canonical's deb jaunty-security main restricted
# deb cdrom:[Ubuntu-Server 9.04 _Jaunty Jackalope_ - Release amd64 (20090421.1)]/ jaunty main restricted
# See for how to upgrade to
# newer versions of the distribution.
deb-src jaunty main restricted
## distribution.
deb jaunty-updates main restricted
deb-src jaunty-updates main restricted
## team. Also, please note that software in universe WILL NOT receive any
## review or updates from the Ubuntu security team.
deb jaunty universe
deb-src jaunty universe
deb jaunty-updates universe
deb-src jaunty-updates universe
## team, and may not be under a free licence. Please satisfy yourself as to
## your rights to use the software. Also, please note that software in
## multiverse WILL NOT receive any review or updates from the Ubuntu
## security team.
deb jaunty multiverse
deb-src jaunty multiverse
deb jaunty-updates multiverse
deb-src jaunty-updates multiverse
## repository.
## N.B. software from this repository may not have been tested as
## extensively as that contained in the main release, although it includes
## newer versions of some applications which may provide useful features.
## Also, please note that software in backports WILL NOT receive any review
## or updates from the Ubuntu security team.
# deb jaunty-backports main restricted universe multiverse
# deb-src jaunty-backports main restricted universe multiverse
## 'partner' repository.
## This software is not part of Ubuntu, but is offered by Canonical and the
## respective vendors as a service to Ubuntu users.
# deb jaunty partner
# deb-src jaunty partner
deb-src jaunty-security main restricted
deb jaunty-security universe
deb-src jaunty-security universe
deb jaunty-security multiverse
deb-src jaunty-security multiverse
然后运行
aptitude update
更新apt包库,运行
aptitude safe-upgrade
以安装最新更新(如果有的话)。如果你看到有新的内核作为更新的一部被安装了,你应该重启系统:
reboot
9,更改默认的shell
/bin/sh是一个到/bin/dash的软链接,我们需要的是/bin/bash,所以我们这样:
dpkg-reconfigure dash
Install dash as /bin/sh? <-- No
如果你不这样做,ISPConfig 安装将失败。
10,禁用Apparmor
Apparmor是一个安全插件(类似于SELinux),它本应该提供更多的安全。在我看来你不会需要这们一个安全系统,比较好处,它带来的更多的问题,比如你发现一些服务不正常,你查了一周,结果发现一切都OK,只是因为AppAmoor引起的问题。所以我禁用它,(如果后面你想安装ISPconfig,这一步是必须的)
我们可以这们禁用它:
/etc/init.d/apparmor stop
update-rc.d -f apparmor remove
aptitude remove apparmor apparmor-utils